Add more event handlers to sanitize

malwaremanu · Apr 13, 2019 · 9a929c9 · 9a929c9
1 parent 3673576
commit 9a929c9
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/couch/parser/HTMLParser.php b/couch/parser/HTMLParser.php
@@ -181,6 +181,7 @@ function sanitize( $val ){
 
             // invalidate other dangerous words
             // https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet
+            // https://gist.github.com/kurobeats/9a613c9ab68914312cbb415134795b45
             $ra2 = array(
                  'fscommand', 'onabort', 'onactivate', 'onafterprint', 'onafterupdate', 'onbeforeactivate',
                  'onbeforecopy', 'onbeforecut', 'onbeforedeactivate', 'onbeforeeditfocus',
@@ -204,6 +205,8 @@ function sanitize( $val ){
                  'datafld', 'dataformatas', 'datasrc', 'binding', 'behavior',
                  'onformchange', 'onforminput', 'formaction', 'oninput', 'dirname', 'pattern', 'mhtml:',
                  'onhashchange', 'onmessage', 'onoffline', 'ononline', 'onpagehide', 'onpageshow', 'onpopstate', 'onstorage', 'onundo', 'onredo',
+                 'oninvalid', 'onsearch', 'onwheel', 'oncanplay', 'oncuechange', 'ondurationchange', 'onemptied', 'onplay', 'onratechange',
+                 'onstalled', 'onsuspend', 'ontimeupdate', 'onvolumechange', 'onwaiting', 'onshow', 'ontoggle',
                  );
 
             for( $i = 0; $i < count($ra2); $i++ ){